2015 m. gegužės 18 d., pirmadienis

Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence TC and TE Software

Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence TC and TE Software

Advisory ID: cisco-sa-20150513-tc

Revision 1.0

For Public Release 2015 May 13 16:00  UTC (GMT)

+-----------------------------------------------------------
----------

Summary
=======

Cisco TelePresence TC and TE Software contains the following vulnerabilities:

    Cisco TelePresence TC and TE Software Authentication Bypass Vulnerability
    Cisco TelePresence TC and TE Software Crafted Packets Denial of Service Vulnerability


Successful exploitation of the Cisco TelePresence TC and TE Software Authentication Bypass Vulnerability could allow an attacker to bypass system authentication and access the device with the privileges of the root user.

Successful exploitation of the Cisco TelePresence TC and TE Software Crafted Packets Denial of Service Vulnerability could allow an attacker to restart several processes and possibly trigger a reload of the affected system.

Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are not available. This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150513-tc

Komentarų nėra:

Rašyti komentarą